CVE-2019-13629

Name of the Vulnerable Software and Affected Versions MatrixSSL versions 4.2.1 and earlier

Description The issue is a timing side channel in ECDSA signature generation, which allows a local or remote attacker to compute the private key used by measuring the duration of hundreds to thousands of signing operations. This occurs due to a leak of the bit length of the scalar in the scalar multiplication in crypto/pubkey/ecc math.c.

Recommendations For MatrixSSL versions 4.2.1 and earlier, consider disabling the ECDSA signature generation functionality until a patch is available to prevent exploitation of the timing side channel. Restrict access to the ecc math.c module to minimize the risk of exploitation. Avoid using the affected scalar multiplication function in the ECDSA signature generation process until the issue is resolved.